===================================================================== CERT-Renater Note d'Information No. 2010/VULN413 _____________________________________________________________________ DATE : 14/10/2010 HARDWARE PLATFORM(S) : / OPERATING SYSTEM(S) : Windows XP, Windows Vista, Windows 7, Windows Server 2003, Windows Server 2008 running Windows Media Player. ====================================================================== KB2378111 http://www.microsoft.com/technet/security/bulletin/MS10-082.mspx ______________________________________________________________________ Microsoft Security Bulletin MS10-082 - Important Vulnerability in Windows Media Player Could Allow Remote Code Execution (2378111) Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in Windows Media Player. The vulnerability could allow remote code execution if Windows Media Player opened specially crafted media content hosted on a malicious Web site. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. This security update is rated Important for Windows Media Player 9 Series, Windows Media Player 10, Windows Media Player 11, and Windows Media Player 12 when installed on supported releases of Microsoft Windows except for Windows Server 2008 and Windows Server 2008 R2. For Windows Media Player 11 and Windows Media Player 12 when installed on supported editions of Windows Server 2008 and Windows Server 2008 R2, this security update is rated Moderate. All supported Itanium-based editions of Windows Server 2003, Windows Server 2008, and Windows Server 2008 R2 are not affected by the vulnerability. For more information, see the subsection, Affected and Non-Affected Software, in this section. Affected Software Windows XP Service Pack 3 Windows XP Service Pack 3 Windows XP Professional x64 Edition Service Pack 2 Windows Vista Service Pack 1 and Windows Vista Service Pack 2 Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2 Windows 7 for 32-bit Systems Windows 7 for x64-based Systems Windows Server 2003 Service Pack 2 Windows Server 2003 x64 Edition Service Pack 2 Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 R2 for x64-based Systems Vulnerability Information Windows Media Player Memory Corruption Vulnerability - CVE-2010-2745 A remote code execution vulnerability exists in the way that the Windows Media Player deallocates objects during a reload operation via a Web browser. This vulnerability could allow code execution if a user visits a specially crafted Web page. If a user is logged on with administrative user rights, an attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. ====================================================================== ========================================================= Les serveurs de référence du CERT-Renater http://www.urec.fr/securite http://www.cru.fr/securite http://www.renater.fr ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23 - 25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email: certsvp@renater.fr + =========================================================